CVE-2026-9408

creationtimestamp| type| source ---|---|--- 2026-05-25 01:30:31+00:00| seen| https://infosec.exchange/users/offseq/statuses/116632625460794481 2026-05-25 01:30:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mmnddk3og42y...

cve-researcher

cve-researcher AI-powered CVE research in your terminal —...

CVE-2026-7879

In Concrete CMS 9.5.0 and below, the submitpassword method in concrete/controllers/singlepage/downloadfile.php allows unauthorized file access since downloading permission-restricted files bypasses the viewfile permission check. Files without passwords can be downloaded and any user who knows a...

CVE-2026-36827

creationtimestamp| type| source ---|---|--- 2026-05-19 20:34:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmaah3kxw22p...

CVE-2026-6347

creationtimestamp| type| source ---|---|--- 2026-05-18 18:00:52+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mm5hfwtbe42w 2026-06-01 11:03:18+00:00| seen| https://bsky.app/profile/keiwork35.bsky.social/post/3mn7wm6okxp2t...

CVE-2025-12659

The affected applications contains a memory corruption vulnerability while parsing specially crafted IPT files. This could allow an attacker to execute code in the context of the current process. ZDI-CAN-27349, ZDI-CAN-27389...

CVE-2026-43578

creationtimestamp| type| source ---|---|--- 2026-05-06 20:45:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml7kywdjit2r 2026-05-06 21:32:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml7nnj45ja2e 2026-05-24 19:37:06+00:00| seen|...

CVE-2026-43576

creationtimestamp| type| source ---|---|--- 2026-05-06 20:45:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml7kyox52426...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an incorrect allocation of byte control data in the ipc4-topology module of the SOF audio driver...

CVE-2025-70067

creationtimestamp| type| source ---|---|--- 2026-05-05 21:22:13+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml54lzltxc2s...

CVE-2026-41925

creationtimestamp| type| source ---|---|--- 2026-05-04 20:42:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml2jvukepv2v...

CVE-2026-42652

creationtimestamp| type| source ---|---|--- 2026-04-29 14:56:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mknebg6ruc2k...

CVE-2026-42167

creationtimestamp| type| source ---|---|--- 2026-04-28 15:00:17+00:00| seen| Telegram/H01iEvXyQvFt3BKrUWEkrM93zs5xMaOZIzFsw2eb4Vo29b0 2026-04-28 21:00:04+00:00| published-proof-of-concept| Telegram/eS6PVxYAnM0JrA3WVLfUd-acXUZbhqPWuOh5cENwecmTOw 2026-04-29 00:02:19+00:00| seen|...

CVE-2025-9957

creationtimestamp| type| source ---|---|--- 2026-04-22 12:50:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mk3jwdl7pl2u 2026-04-24 07:57:51+00:00| seen| https://ccb.belgium.be/advisories/warning-11-new-vulnerabilities-gitlab-ce-and-ee-editions-patch-immediately...

Use of a Broken or Risky Cryptographic Algorithm

Overview org.graalvm.sdk:graal-sdk is a high-performance JDK distribution designed to accelerate the execution of applications written in Java and other JVM languages along with support for JavaScript, Ruby, Python, and a number of other popular languages. Affected versions of this package are...

Cleartext Transmission of Sensitive Information

Overview Affected versions of this package are vulnerable to Cleartext Transmission of Sensitive Information in the Kerberos credentialing. An attacker can intercept sensitive information by capturing unencrypted credentials during transmission. Remediation A fix was pushed into the master branch...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the Arena memory allocation. An attacker can cause unintended modification of data by providing specially crafted input that manipulates memory allocation boundaries. Remediation A fix was pushed into the...

SkillCyberPunk

Security Vulnerability Scanner A Claude Code plugin that auto...

GHSA-QF73-2HRX-XPRP

creationtimestamp| type| source ---|---|--- 2026-04-09 01:27:25+00:00| published-proof-of-concept| Telegram/uNEbWTFRO9kglbQXnY7zSMHaUxTxgzOMmWKv2o-GlQMO0RY...

CVE-2025-24266

creationtimestamp| type| source ---|---|--- 2026-04-02 22:15:18+00:00| seen| Telegram/P5-d6aZOqF55QElx3cS6BOd0aPe5lgIDzzkyeelTZVJswY 2026-04-02 22:15:27+00:00| seen| Telegram/zRO4yDgOkqitQ-0uPFlpuBUiTVJii3PBjh2HUkR1y964uzw...